When maxTimeSinceAuthn is used, valid time interval is miscalculated when IdP time is a few seconds ahead of SP time

Basics

Technical

Logistics

Basics

Technical

Logistics

Description

If IdP time is ahead of SP time, valid time interval is miscalculated when using maxTimeSinceAuthn.
Skew needs to be taken into account to prevent the calculation ending up negative.

Environment

None

Activity

Scott Cantor
June 25, 2011 at 5:24 AM

http://svn.shibboleth.net/view/cpp-sp?view=revision&revision=3467

Resize issue view side panel

Fixed

Details

Assignee

Scott Cantor

Reporter

Bart Ophelders

Fix versions

2.4.3

Affects versions

2.4.2

Created June 16, 2011 at 3:29 PM

Updated July 7, 2011 at 1:56 AM

Resolved June 25, 2011 at 5:24 AM

When maxTimeSinceAuthn is used, valid time interval is miscalculated when IdP time is a few seconds ahead of SP time

Description

Environment

Activity

Scott Cantor
June 25, 2011 at 5:24 AM

Details

Assignee

Reporter

Fix versions

Affects versions

Flag notifications

Something's gone wrong

Something's gone wrong

When maxTimeSinceAuthn is used, valid time interval is miscalculated when IdP time is a few seconds ahead of SP time

Description

Environment

Activity

Scott Cantor June 25, 2011 at 5:24 AM

Details

Assignee

Reporter

Fix versions

Affects versions

Flag notifications

Something's gone wrong

Something's gone wrong

Scott Cantor
June 25, 2011 at 5:24 AM